Hi
Well the client code exists in a Logon Servlet, which retreives the username
and password from the user, the client code I posted before is then called in
this servlet, to log the user onto the system, debugging this I can see the
username and password being correctly passed to the LoginModu
Thanks for your replay, yeah I've been using chapter 8 as a guide.
I'm not sure I'm with you though, there is only one login module defined in the
"other" domain.
If I modify my code to reflect the following it should work?
public void doGet(HttpServletRequest request, HttpServletResponse res
ok thanks, still not entirely sure why but changing the LoginContext to use
"client-login", worked! My mistake seemed to be to use the same domain for
client and server, they should be different one with a client login module and
one with a server login module as described in section 8.4.1.
tha
Well I've been running the secure EJB's with J2EE roles fine now, but like you
say it only works for one thread and therefore the login information is lost
after that HTTP request/thread dies.
I'm not sure where in chapter 8 is the container managed authentication that
you describe? Do you mea
Ok thanks. Well I have remove the client login code from the servlet, and I
have setup a realm using . All seems to be working ok
except that we use a custom principal.
I have made the change as described ont eh wiki:
http://wiki.jboss.org/wiki/Wiki.jsp?page=UsingCustomPrincpalsWith and all se
Ok I've fixed the problem, in JBossSecurityMgrRealm there is a protected method
called getPrincipal(String) but it does not appear to be used when it should
have. I have tested the following code and it fixes my problem, so it would
appear to be a bug in JBoss, how do I get this checked in, i.e.
I'm trying to implement web application wide secruity to secure servlets and
EJB's with a custom principal.
I have Extended UsernamePasswordLoginModule:
public class MyLoginModule extends UsernamePasswordLoginModule
| {
|
|private Principal identity;
|
|public Principal g
Yeah that works great if you arn't using a realm, however the
JBossSecurityMgrRealm creates an instance of SimplePrincipal which is then
returned by sessionContext.getCallerPrincipal() inside the EJB's.
So it would appear that LoginModule.login() creates the Principal which goes in
the HttpServ
Further to this, it would appear someone else had the same problem:
anonymous wrote :
| I think I have found why the principal is not propagated. The
SessionAssociationValve, that is supposed to propagate the principal from the
Web tier to the EJB tier checks the type of the principal and only
Finally! I've spent 2 weeks trying to get this security with a custom principal
working and it finally appears to be working!
That was the break i needed, I did a search and it would appear
"CallerPrincipal" is some kind of internal static variable, the clue was here:
anonymous wrote : The Call
Thought I'd resurrect this post as I am having the same problem, it seems to be
a common problem as I've found many people asking the same question. There must
be a way within the spec to do it so that after logging in you always go to the
homepage?
Does anyone have any neat solutions?
View th
yeah JBossIDE does not work with eclipse 3.2, many of us are waiting for
JBossIDE 2.0 (which will support 3.2) to be released. You will have to install
eclipse 3.1, until a release of JBossIDE 2.0 comes out.
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=39533
oh heres the bug report, maybe you should vote for it -->
http://jira.jboss.com/jira/browse/JBIDE-315
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3953357#3953357
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3953357
great, thanks!
heres the link for those who dont have it -->
http://download.jboss.org/jbosside/builds/nightly/
View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3953931#3953931
Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=repl
14 matches
Mail list logo
